WordPress announced a major clampdown to protect its theme and plugin ecosystem from password insecurity. These improvements follow a flurry of attacks in June that compromised multiple plugins at the ...

WordPress versions 3.7 – 4.0 will no longer receive security updates beginning on December 1, 2022. Anyone using these out of date versions of WordPress will put their sites at risk for hacking after ...

Here's how to stay safe ...

Security vulnerabilities with critical risk ratings are present in widespread WordPress plugins. One is already being attacked.

As a platform renowned for its flexibility and accessibility, WordPress has become an instrumental tool for many enterprises worldwide. Its user-friendly design, customizable features and vast plugin ...

WordPress security is a crucial topic to consider for every website owner. According to PatchStach, a cybersecurity company focused on the WordPress environment, “Google quarantines around 10,000 ...

WordPress administrators are being emailed fake WordPress security advisories for a fictitious vulnerability tracked as CVE-2023-45124 to infect sites with a malicious plugin. The campaign has been ...

Thousands of sites running WordPress remain unpatched against a critical security flaw in a widely used plugin that was being actively exploited in attacks that allow for unauthenticated execution of ...

At least 1 million websites that run on WordPress have been infected by a campaign that uses rafts of WordPress plug-in and theme vulnerabilities to inject malicious code into sites, including a hefty ...

Popular WordPress security plugin WP Ghost is vulnerable to a critical severity flaw that could allow unauthenticated attackers to remotely execute code and hijack servers. WP Ghost is a popular ...

AUSTIN, Texas--(BUSINESS WIRE)--WP Engine, the world's most trusted WordPress technology company, today announced that it has received ISO/IEC 27001:2013 certification for its Information Security ...